Local File Overwrite Vulnerability in Website META Language by WML
CVE-2008-0665

Currently unrated

Key Information:

Vendor: Website Meta Language
Status: Website Meta Language
Vendor: CVE Published:; 11 February 2008

🔔 Create Website Meta Language Vulnerability Alert

What is CVE-2008-0665?

The Website META Language (WML) version 2.0.11 is susceptible to a local file overwrite vulnerability that allows users to exploit the application through a symbolic link (symlink) attack targeting the temporary file ipp.$$.tmp. This flaw provides an avenue for potential unauthorized file write operations, which could lead to further security breaches if unaddressed. Proper mitigation strategies should be employed to safeguard against such attacks and protect sensitive data.

References

http://www.securityfocus.com/bid/27685

vdb-entryx_refsource_BID

http://secunia.com/advisories/29353

third-party-advisoryx_refsource_SECUNIA

http://www.debian.org/security/2008/dsa-1492

vendor-advisoryx_refsource_DEBIAN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2008
Vulnerability Reserved
Feb 7, 2008